PCT 



WORLD INTELLECTUAL PROPERTY ORGANIZATION 
International Bureau 




INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCT) 



(51) International Patent Classification 6 : 
H04Q 11/04 



Al 



(11) International Publication Number: WO 98/47310 

(43) International Publication Date: 22 October 1998 (22.10.98) 



(21) International Application Number: PCT/US98/07540 

(22) International Filing Date: 14 April 1998 (14.0498) 



(30) Priority Data: 
08/840,890 



17 April 1997 (17.04.97) 



US 



(71) Applicant: ERICSSON, INC. [US/US]; Patent Dept, 1010 East 

Arapaho, Richardson, TX 75081 (US). 

(72) Inventors: LIU, Tzu-Oiun; 640 Spruce Drive, Sunnyvale, 

CA 94086 (US). STROLLO, Sebastian; Folkungagatan 65, 
S-116 22 Stockholm (SK). AHMED, Zaheer; 1508 New 
Bedford Court, San Jose, CA 95131 (US). KEVERN, Brad; 
34369 Eucalyptus Terrace, Fremont, CA 94555 (US). 

(74) Agents: BURSE, David, T. et al.; Lyon & Lyon LLP, Suite 
4700, 633 West Fifth Street, Los Angeles, CA 90071-2066 
(US). 



(81) Designated States: AL, AM, AT, AU, AZ, BA, BB, BG, BR, 
BY, CA, CH, CN, CU, CZ, DE, DK, EE, ES, FI, GB, GE, 
GH, GM, GW, HU, ID, IL, IS, JP, KE, KG, KP, KR, KZ, 
LC, LK, LR, LS, LT, LU, LV, MD, MG, MK, MN, MW, 
MX, NO, NZ, PL, PT, RO, RU, SD, SE, SG, SI, SK, SL, TJ, 
TM, TR, TT, UA, UG, UZ, VN, YU, ZW, ARIPO patent 
(GH, GM, KE, LS, MW, SD, SZ, UG, ZW), Eurasian patent 
(AM, AZ, BY, KG, KZ, MD, RU, TJ, TM), European patent 
(AT, BE, CH, CY, DE, DK, ES, FI, FR. GB, GR, IE, IT, 
LU, MC, NL, PT, SE), OAPI patent (BF, BJ, CF, CG, CI, 
CM, GA, GN, ML, MR, NE, SN, TD, TG). 



Published 

With international search report. 
With amended claims. 



(54) Title: NETWORK INTERFACE WITH ADAPTIVE BRIDGE FOR EFFICIENT MAPPING OF ETHERNETS OVER 
ATM-BASED BROADBAND ACCESS NETWORK 



AN 



48 




(57) Abstract 

A network interface for mapping local ethemet traffic onto an ATM-based broadband access network includes an adaptive MAC-level 
bridge that employs a fast algorithm for filtering outgoing ethemet packets destined only for local devices on the same ethemet The network 
interface reads outgoing packets received on a respective local ethemet segment, using the last byte of the MAC destination address of the 
packet header to index into a hash table of a linked list containing the first five bytes of respective stored MAC addresses of devices located 
on the subscriber ethemet segment If the destination address exists in the linked list, the ethemet packet is dropped, since it belongs to the 
subscriber LAN segment and is not meant for further upstream transmission over the broadband access network. Since only the last byte 
of the destination address is used for hashing, a relatively small table of only two-hundred fifty-five entries can be used to index into the 
remaining five bytes of the respective stored MAC addresses, wherein the linked list keeps track of collisions on addresses linked to the 
same hash value. 



FOR THE PURPOSES OF INFORMATION ONLY 



Codes used to identify States party to the PCT on the front pages of pamphlets publishing international applications under the PCT. 



AL 


Albania 


ES 


Spain 


LS 


Lesotho 


SI 


Slovenia 


AM 


Ann cola 


FI 


Finland 


LT 


Lithuania 


SK 


Slovakia 


AT 


Austria 


FR 


France 


LU 


Luxembourg 


SN 


Senegal 


AU 


Australia 


GA 


Gabon 


LV 


Latvia 


sz 


Swaziland 


AZ 


Azerbaijan 


GB 


United Kingdom 


MC 


Monaco 


TO 


Chad 


BA 


Bosnia and Herzegovina 


GB 


Georgia 


MD 


Republic of Moldova 


TG 


Togo 


BB 


Barbados 


GH 


Ghana 


MG 


Madagascar 


TJ 


Tajikistan 


BE 


Belgium 


GN 


Guinea 


MK 


the former Yugoslav 


TM 


*i\irii nTftftfyrifln 


BF 


Burkina Paso 


GR 


Greece 




Republic of Macedonia 


TR 


Turkey 


BG 


Bulgaria 


HU 


Hungary 


ML 


Mali 


TT 


Trinidad and Tobago 


BJ 
BR 


Benin 


IE 


Ireland 


MN 


Mongolia 


UA 


Ukraine 


Brazil 


IL 


Israel 


MR 


Mauritania 


UG 


Uganda 


BY 


Belarus 


IS 


Iceland 


MW 


Malawi 


US 


United States of America 


CA 


Canada 


IT 


Bah/ 


MX 


Mexico 


UZ 


Uzbekistan 


CF 


Central African Republic 


JP 


Japan 


NE 


Niger 


VN 


Viet Nam 


CG 


Congo 


KE 


Kenya 


NL 


Netherlands 


YU 


Yugoslavia 


CH 


Switzerland 


KG 


Kyrgyzstan 


NO 


Norway 


zw 


Zimbabwe 


a 


Cote d'lvoire 


KP 


Democratic People's 


NZ 


New Zealand 






CM 


Cameroon 




Republic of Korea 


PL 


Poland 






CN 


China 


KR 


Republic of Korea 


PT 


Portugal 






CU 


Cuba 


KZ 


fC&zdcst&D 


RO 


Romania 






cz 


Czech Republic 


LC 


Saint Lucia 


RU 


Russian Federation 






DE 


Germany 


U 


Liechtenstein 


SD 


Sudan 






DK 


Denmark 


LK 


Sri Lanka 


SE 


Sweden 






EE 


Estonia 


LR 


Liberia 


SG 


Singapore 







WO 98/47310 



PCT/US98/07540 



1 

DESCRIPTION 

Network Interface With Adaptive Bridge For Efficient 
Mapping Of Ethernets Over An ATM-Based 
Broadband Access Network 

Field of the Invention 

The present invention pertains to the field of data 
communication networks and, more particularly, to methods 
and apparatus for implementing adaptive bridge 
functionality in a network interface device for providing 
efficient mapping of one or more local ethernet networks 
over an ATM-based broadband access network. 

Background of the Invention 

It has become increasingly desirable to reduce the 
(overall) required transmission and distribution 
facilities for providing multiple communication services 
for residential and business subscribers. For example, 
in addition to traditional telecommunication and CATV 
services, it is desirable to further combine the two-way 
transport of multiple "broadband" digital services over a 
single, economic distribution network, such as, e.g., a 
fiber, coaxial, or combined fiber-coaxial distribution 
network. Further, with the explosion of recent interest 
in services associated with the "Internet," demand for 
low cost, high speed two-way digital data transport is at 
an all time high. 

There has been significant development of 
asynchronous transfer mode ("ATM") networks, which are 
particularly well-suited for supporting multiple digital 
data services delivered over a single distribution 
network. With ATM transmission, data packets, or "cells" 
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containing information relating to one or more subscriber 
services are periodically assembled and transmitted from 
a sending node and received and disassembled at a 
receiving node, wherein bandwidth utilization is 
5 optimized as a function of the statistical service 
activity. By way of specific examples of ATM-based 
broadband access networks, a preferred system 
architecture and data transmission protocol for an ATM- 
based point-to-multipoint optical network is disclosed 

10 and described in U.S. Patent Application Serial No. [not- 
yet-assigned, Lyon & Lyon Docket No. 220/095], filed 
April 3, 1997, entitled "Data Transmission Over a Point - 
to-Multipoint Optical Network." Likewise, a preferred 
system architecture and data transmission protocol for an 

15 ATM-based a point-to-multipoint broadband access network 
employing a shared coaxial medium is disclosed and 
described in U.S. Patent Application Serial No. 
08/772,088, filed December 19, 1996, entitled "Network 
Architecture for Broadband Data Communication Over a 

20 Shared Medium." Both of these applications are fully 
incorporated herein by reference. 

In order to support such a wide variety of 
communication signal protocols and service types 
transmitted over a single subscriber access line, it is 

25 necessary to also provide a multi-functional network 
interface at each respective subscriber premise location, 
i.e., residence or business. In particular, the network 
interface must be able to perform the requisite 
transmission, reception, provisioning (i.e., service 

30 parsing and routing) and maintenance needed to achieve a 
service-independent, transparent gateway between an ATM- 
based broadband access network and the respective 
subscriber communication devices. Further, ethernets 
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connecting two or more devices in a respective business 
or residence will often carry a significant amount of 
traffic that is only intended for local use. Thus, the 
transparent upstream transmission of data packets from 
5 this network can be costly in terms of both bandwidth 
utilization and message security, not to mention the 
increased cost of the unnecessary transport of the 
packets throughout the upstream network. As such, it 
would be desirable to add MAC level bridging 
10 functionality to the afore-described subscriber network 
interface. 

In particular, a "bridge" is used to interconnect 
two or more separate local area network segments (e.g., 
ethernets). Bridges typically operate by mapping the MAC 

15 addresses of the respective end stations residing on each 
network segment connected to the bridge and allowing only 
the necessary traffic to pass through to the other 
segment (s). For example, when a packet is received by 
the bridge from a network segment, the bridge evaluates 

20 the respective destination and source address segments of 
the packet and, if the segments are the same, the packet 
is dropped, or "filtered." If the source and destination 
address segments are different, then the packet is 
forwarded to the appropriate segment (s). Additionally, 

25 bridges may be configured to prevent bad or misaligned 
packets from spreading between segments by not forwarding 
them. A more detailed description of LAN bridges and 
routers is provided in "Interconnections: Bridges and 
Routers," by Radia Perlman, (1992, Addison-Wesley) , which 

30 is also fully incorporated herein by reference. Further 
reference is made to the various LAN bridging standards 
promulgated by the IEEE 802.1 committee, and, in 
particular, the 802. Id standard, which was first 
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published in March, 1991, and which is also fully 
incorporated herein by reference. 

"Learning bridges" make more selective routing 
decisions by building an internal MAC address table for 
5 each connected segment based on the source addresses of 
respective messages received by the bridge. More 
recently, multi-port routers and hubs (or LAN switches) 
have been developed to perform more complex network 
traffic management functions, such as routing packets 

10 between different or multiple LAN types, or based on 
multiple "virtual" LAN designations. A basic property of 
learning bridges is that some type of "spanning 
algorithm" must be employed to prevent never-ending loop 
backs of data between different bridges; (hence the term 

15 "tree," which has no loops). A detailed description of 
the spanning tree algorithm approach is set forth in the 
Perlman text. 

However, the spanning tree algorithm is complex to 
implement, can impose significant (i.e., expensive) 

20 memory and processor requirements, and does not 
necessarily provide for good security. As a result, the 
conventional spanning tree approach is not well-suited 
for the afore-described network interface application. 

Thus, it would be desirable to provide a network 

25 interface device having bridging functionality for 
mapping one or more local area networks, such as 
ethernets, over an ATM-based broadband access network. 
Such bridging functionality will preferably provide 
strict message filtering and security, with relatively 

30 low memory and processor requirements. 
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Summary of the Invention 

The present invention provides an improved network 
interface for mapping local ethernet traffic onto an ATM- 
based broadband access network, wherein the interface 
5 includes an adaptive MAC-level bridge that employs a fast 
algorithm for filtering outgoing packets destined only 
for local devices on the same ethernet segment. 

In a preferred embodiment, respective subscriber 
residences and business locations are each equipped with 

10 a network interface that provides access to an ATM-based 
broadband access network. In particular, the network 
interface includes an ethernet service module that 
connects one or more MAC devices in the respective 
residence or business location (e.g., personal computers, 

15 printers, fax machines, etc.) as a respective local area 
network segment. 

In accordance with a general aspect of the 
invention, the ethernet service module reads every 
outgoing packet received on the respective ethernet 

20 segment, first checking the ethernet CRC data then, if 
the packet data is not corrupted or otherwise misaligned, 
using the last byte of the MAC destination address of the 
packet header to index a hash table of a linked list 
containing the first five bytes of the stored MAC 

25 addresses of devices located on the ethernet segment. If 
the destination address exists in the linked list, the 
ethernet packet is dropped, since it belongs to the 
subscriber LAN segment and is not meant for further 
upstream transmission. 

30 In particular, since only the last byte of the 

destination address is used for hashing, a relatively 
small hash table of two-hundred fifty-five entries can be 
used to index into the remaining five bytes of the 
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respective stored MAC addresses f wherein a linked list 
keeps track of collisions on the hash value (i.e., 
whereby a separate "linked" entry is created for each MAC 
address having the same common last byte. 
5 In accordance with a further aspect of the 

invention, regardless of whether the destination address 
is a match with a stored address, the ethernet service 
module also checks the source address of the outgoing 
respective packets by using the same algorithm. In 

10 particular, if an address does not already exist in the 
linked list, it is added. In this manner, the ethernet 
service module keeps growing its internal database 
corresponding to the presence and activities of devices 
on the subscriber ethernet segment. 

15 In accordance with a still further aspect of the 

invention, a variable timer is employed to track of the 
"shelf life" of stored MAC addresses, and to ensure that 
only recently active addresses are stored. In a 
preferred embodiment, a timer tick is set at a regular 

20 interval for traversing the linked list, decrementing the 
remaining time each of the respective stored MAC 
addresses has left and, at the same time, deleting those 
addresses whose life time has expired. Conversely, each 
time a stored MAC address shows up in the source address 

25 field, its "shelf life" allotment is fully reset to a new 
maximum value. 

In accordance with a still further aspect of the 
invention, the network interface can also be implemented 
as a protocol interface, in addition to a packet filter. 

30 To this end, in a preferred embodiment, ethernet packets 
that are to be forwarded over the ATM-based network are 
given respective LLC and AAL-5 layer headers (and new CRC 
data) for upstream ATM cell transport. 
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Other and further objects, features, aspects, and 
advantages of the present invention will become better 
understood with the following detailed description of the 
accompanying drawings. 

5 

Brief Description of the Drawings 

The drawings illustrate both the design and utility 
of preferred embodiments of the present invention, in 
which: 

10 FIG. 1 is a functional diagram of an exemplary ATM- 

based broadband access network that maps a plurality of 
subscriber residences and business locations over a wide 
area network ("WAN") ; 

FIG. 2 illustrates a preferred filtering process of 

15 outgoing packets from a respective subscriber ethernet 
LAN segment in the network of FIG. 1; 

FIG. 3 illustrates a preferred process for updating 
a linked list of stored MAC addresses used in the 
filtering process illustrated FIG. 2; and 

20 FIG. 4 illustrates a preferred protocol adaptation 

process for converting ethernet packets to be forwarded 
over the broadband access network of FIG. 1 into ATM cell 
format . 

25 Detailed Description of the Preferred Embodiments 

Referring to FIG. 1, an exemplary ATM-based 
broadband access network 20 includes an ATM compatible 
switch 26, which transmits and receives multi-service 
type ATM cells to and from a plurality subscriber 

30 residences 21 and business locations 22, respectively. 
The ATM switch 26 also transmits and receives ATM cells 
over a wide area network ("WAN") 24, such as, e.g., a 
public switched telephone network, a private point-to- 
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point or point-to-multipoint network, or some combination 
thereof. 

In accordance with a first aspect of the invention, 
the respective subscriber residences 21 and business 
5 locations 22 are each equipped with a network interface 
facility ("NT") 28. In particular, the NT 28 supports 
the two-way transport of multiple communication services 
via RF carrier modulated ATM cells that are transmitted 
between the switch 26 and respective NT 28 over a hybrid- 

10 fiber-coaxial ("HFC") distribution network 40, wherein a 
respective coaxial feeder cable 38 connects each NT 28 to 
the HFC network 40. As will be apparent to those skilled 
in the art, the HFC distribution network 40 may take 
several alternate physical forms. By way of example, 

15 "downstream" ATM cell traffic transmitted from the switch 
26 to one or more NTs 28 may initially be multiplexed for 
transport over a shared high speed optical fiber (not 
shown) , then de-multiplexed for local distribution over a 
shared coaxial cable (also not shown) . In alternate 

20 preferred embodiments, a pure optical or coaxial network 
may be equally employed. 

An exemplary preferred NT 28 is shown and described 
in U.S. Patent Application Serial No. 08/608,436, filed 
February 28, 1996, entitled, "Subscriber Network 

25 Interface And Method, " which is also fully incorporated 
herein by reference. In accordance with that disclosure, 
ATM cell-mux circuitry (not shown) in the respective NTs 
28 provide for de-multiplexing and routing of incoming 
(i.e., downstream) ATM cells, and for collecting and 

30 multiplexing of outgoing (i.e., "upstream") ATM cells, 
respectively, wherein the incoming and outgoing ATM cells 
are routed to and from a plurality of "ATM" subscriber 
service modules (also not shown) within the NT 28. 
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The respective subscriber service modules each 
support individual services , including (at least) 
telecommunications 30 (e.g., POTS and/or ISDN) , set-top 
telemetry 32 (e.g., for CATV video-on-demand), CEBus 
5 network 34 (e.g., for connecting utility managed 
appliances) and ethernet 36. In particular, an ethernet 
service module 29 in each NT 28 connects one or more MAC 
devices (e.g., personal computers, printers, fax 
machines, etc.) in the respective residence 21 or 

10 business location 22 as a respective local area network 
("LAN") segment (36). 

Each service module "disassembles" the respective 
incoming cells routed to it by the ATM cell-mux 
circuitry, adapting the data contained therein into an 

15 appropriate service protocol for delivery through a 
subscriber-side I/O port (not shown) associated with the 
respective service module. The protocol conversion may 
include, for example, circuit emulation for providing a 
synchronous digital data stream, depending on the 

20 respective service. 

Conversely, information in upstream signals received 
through a subscriber-side I/O port is assembled into 
sequential cells by the respective service module and 
delivered to the ATM cell-mux circuitry. In this manner, 

25 the ATM transmission of combined services over the 
network 20 side is advantageously transparent at the 
subscriber-side (21/22) I/O ports of the respective 
NT 28. 

As described in greater detail below, the 
30 destination MAC address of packets received by an NT 28 
over a respective ethernet segment 36 is analyzed by the 
ethernet service module 29 in the NT 28 to determine if 
the packet is destined for another device on the 
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respective local LAN segment 36, or is destined for a 
remote device, such as, e.g., a remote ethernet LAN 
segment 42 or 44 connected to the WAN 24. In particular, 
in accordance with standard MAC ethernet protocols, each 
5 ethernet data packet includes a header field that 
contains both source and destination MAC addresses — 
i.e., a unique six byte MAC ("media access control") 
address assigned by the manufacturer of the respective 
device — , wherein the source and destination MAC 
10 addresses are used to indicate the respective 
transmitting and intended destination devices of the 
packet. 

Referring to FIG. 2, in accordance with a further 
aspect of the invention, the ethernet service module 29 

15 reads every outgoing packet received on the respective 
ethernet segment 36, first checking the appended ethernet 
CRC data (shown in FIG. 4 with reference number 64) to 
insure integrity of the packet. If the packet is not 
corrupted or otherwise misaligned, the ethernet module 29 

20 then uses the last byte 46 of the MAC destination address 
48 of the packet header to index into a hash table 50 
with a linked list 52 containing the remaining five bytes 
of any devices located on the subscriber side ethernet 
LAN segment 36 whose respective MAC addresses are 

25 presently stored in the hash table/linked list 50/52. 
Since only the last byte 46 of the respective destination 
MAC address is used for the look-up, a relatively small 
hash table 50 of two-hundred fifty-five entries (i.e., 2 8 
-1) is used to index into the remaining five bytes of the 

30 respective stored MAC addresses. 

In particular, a pointer leads from the associated 
value 54 in the hash table 50 of the last data byte 46 of 
the respective destination address to a first linked 
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memory space 55 corresponding to that value. If there 
are no stored addresses in the first linked memory space 
55, there are no further pointers (i.e., or they point to 
"null") and the packet is forwarded. If there is an 
5 address stored in the first space 55 — i.e., 
representing the first five bytes of a corresponding 
respective local segment MAC address, it is compared to 
the first five bytes of the present destination address 
48 and, if there is a match, the packet is dropped. 

10 If there is not a match, a further pointer will link 

to a second memory space 56. Again, if there is no 
address stored in the second memory space 56, then there 
are no further pointers (or they point to null) and the 
packet is forwarded. If there is a further address 

15 stored (i.e., representing the first five bytes of the 
MAC address of a second device having the same common 
last MAC address byte as the stored address in the first 
memory space 55), a comparison will again be made. This 
process will continue until either a matched address 

20 causes the packet to be dropped, or there are no further 
stored addresses linked to the respective value 54 of the 
last byte 46, and the packet is forwarded. Thus, the 
probability of quickly searching and resolving whether 
the destination MAC address corresponds to a resident 

25 device on the respective subscriber ethernet segment 36 
is high. 

In other words, each index value of the hash table 
50 has an associated linked list 52 containing at any 
time "n" stored addresses, where n is some integer value 
30 from zero up to the number of devices on the local 
ethernet segment 36. 

Regardless of whether the destination address search 
resulted in a match, the ethernet service module 29 then 
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checks the source address of the respective packet using 
the same algorithm. If it does not already exist in the 
linked list 52, it is added. In this manner, the 
ethernet service module 29 keeps growing its internal 
5 database corresponding to the presence and activities of 
devices; on the subscriber ethernet segment 36. 

Referring to FIG. 3, a variable timer tick 58 is 
employed to track of the longevity (i.e., "shelf life") 
of MAC addresses stored in the linked list 52, and to 

10 ensure that only recently active addresses are stored. 
In particular, each time a MAC address shows up in a 
source address field, its "shelf life" allotment is fully 
reset to a selected maximum value (i.e., a maximum number 
of "ticks"). The timer tick 58 is set at a regular 

15 interval for traversing the linked list 52 (indicated in 
FIG. 3 by line 60), decrementing the remaining time ticks 
each of the respective stored MAC addresses has left and, 
at the same time, deleting those addresses whose life 
time has expired. 

20 In a presently preferred embodiment, the shelf life 

of a stored address is preferably no more than two days, 
with the timer tick interval 58 selected within a range 
of anywhere from one second to an hour. As will be 
appreciated by those skilled in the art, that an 

25 advantage of the present invention is that memory space 
in the linked list 52 is thus only used on an "as needed" 
basis, i.e., when a further linked address is made to a 
common last byte. 

Referring to FIG. 4, if a respective ethernet packet 

30 62 is not dropped due to corrupt data, or based on a 
matching destination MAC address in the linked list 52, 
then a logical link control header ("LLC") is added by 
the ethernet service module 29 to the front of the 
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packet, i.e., with the ethernet CRC data 64 portion of 
the packet stripped off for evaluation by the ethernet 
service module 29. The packet 62 is then adapted for ATM 
transmission by adding an AAL-5 layer header, along with 
5 new appended CRC data 70 appended, and the newly formed 
ATM cell 72 is then inserted into the upstream ATM cell 
transmission stream from the respective NT 28. 

As will be apparent to those skilled in the art, 
incoming (i.e., downstream) packets are handled much in 

10 the same way as the outgoing packets 62, albeit in the 
reverse order — i.e., the AAL-5 and LLC headers are 
removed and ethernet CRC-32 data is appended to the 
packet before it is forwarded onto the respective 
ethernet segment 36. 

15 Thus, embodiments and applications of a preferred 

network interface including an adaptive bridge for 
filtering out local traffic from that destined for remote 
ethernets located over an ATM-based broadband access 
network have been shown and described. As would be 

20 apparent to those skilled in the art, many modifications 
and applications are possible without departing from the 
inventive concepts herein . 

By way of non-limiting examples, the afore-described 
fast algorithm filtering techniques could be equally 

25 employed to filter incoming traffic as well as outgoing 
traffic. Also, the teachings of the invention may be 
employed to any number of address formats, i.e., in 
addition to the disclosed six byte MAC address format. 
Further, while the disclosed preferred embodiment employs 

30 the last byte of the MAC address to index the hash table 
and associated linked-lists, other selected portions of 
the address field (e.g., the first byte, or the fourth 
byte, etc.) could be equally employed for use as an index 
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value to a remaining portion of an address, as taught by 
the present invention. Still further, the advantageous 
fast filtering algorithm taught by the present invention 
may be employed to selectively identify and filter 
5 messages based on any number of identifying factors, 
e.g., on a matching virtual LAN designation. 

Further still, while the above-described preferred 
embodiment of the invention is implemented as part of a 
network interface (i.e., NT 28) between a local ethernet 

10 segment and an ATM-based wide area network, as will be 
apparent to those skilled in the art, the advantageous 
fast packet filtering algorithm taught by the present 
invention may be implemented in any of a number of bridge 
devices, and between any number of like or different LAN 

15 segment types. Still further, while the respective 
network interface (NT) devices are shown and described in 
context of supporting a single ethernet service module, 
it is well-within the skill in the art to implement a 
network interface that selectively forwards messages from 

20 multiple ethernets to onto one or more ATM-based wide 
area networks, e.g., with separate adaptive bridge tables 
for each ethernet segment. 

Thus, the scope of the disclosed inventions is not 
to be restricted except in the spirit of the appended 

25 claims. 
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Claims 

1. A method for selectively forwarding messages 
from a first network to a second network, each message 
including a destination address, comprising the steps of: 

5 selecting a first value in a table of values based 

on a first portion of the destination address, each table 
value having an associated linked list of an integer 
number of stored entries; and 

comparing the remaining portion of the destination 
10 address to the stored entries, if any, in the linked list 
associated with the selected first value. 

2. The method of claim 1, wherein the destination 
address is a six byte MAC address and the first portion 

15 used for selecting the respective first table value is 
the last byte of the respective destination address. 

3. The method of claim 1, comprising the further 
step of: 

20 filtering any message whose remaining destination 

address portion matches a stored entry in a respective 
linked list. 

4. The method of claim 1, comprising the further 
25 step of: 

forwarding only those messages whose remaining 
destination address portion does not match a stored entry 
in a respective linked list. 

30 5. The method of claim 4, comprising the further 

step of: 

encapsulating each message to be forwarded into an 
ATM cell transmission format. 
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6. The method of claim 1, each message further 
including a source address, comprising the further steps 
of: 

5 selecting a second value in the table based on a 

first portion of the source address; 

comparing the remaining portion of the source 
address to the stored entries, if any, in the linked list 
associated with the selected second value; and 
10 storing the remaining portion of the source address 

in the respective linked list if there is no matching 
entry. 

7. The method of claim 6, comprising the further 
steps of: 

monitoring the time period each source address 
portion is stored in a respective linked list; and 

deleting a source address portion from the 
respective list if an allotted time period has elapsed 
and no subsequent destination address portion match has 
occurred. 

8. The method of claim 7, comprising the further 
step of: 

25 renewing the allotted time period that a source 

address portion is stored in the respective list each 
time a destination address portion match occurs. 

9. The method of claim l f wherein the first 
30 network is an ethernet and the second network is an ATM- 
based wide area network. 
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10. A method for selectively forwarding messages 
from a first network to a second network, each message 
including a destination address and a source address, 
comprising the steps of: 

5 selecting a first value in a table of values based 

on a first portion of the destination address, each table 
value having an associated linked list of an integer 
number of stored entries; comparing the remaining 
portion of the destination address to the stored entries, 
10 if any, in the linked list associated with the selected 
first value; 

forwarding only those messages whose remaining 

destination address portion does not match a stored entry 

in the respective linked list; 
15 selecting a second value in the table based on a 

first portion of the source address; 

comparing the remaining portion of the source 

address to the stored entries, if any, in the linked list 

associated with the selected second value; and 
20 storing the remaining portion of the source address 

in the respective linked list if there is no matching 

entry. 

11. The method of claim 10, wherein the destination 
25 and source addresses are each six byte MAC addresses and 

the respective first portions of the destination and 
source addresses used for selecting the respective first 
and second table values is the last byte of the 
respective addresses. 

30 

12. The method of claim 10, comprising the further 
step of: 
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encapsulating each message to be forwarded into an 
ATM cell format. 

13. The method of claim 10, wherein the first 
5 network is an ethernet and the second network is an ATM- 
based wide area network. 

14. The method of claim 10 , comprising the further 
steps of: 

10 monitoring the time period each source address 

portion is stored in a respective linked list; and 

deleting a source address portion from the 
respective list if an allotted time period has elapsed 
and no subsequent destination address portion match has 

15 occurred. 

15. The method of claim 14, comprising the further 
step of: 

renewing the allotted time period that a source 
20 address portion is stored in the respective list each 
time a destination address portion match occurs. 

16. A device having means for controlling the 
transmission of messages from a first network to a second 

25 network, the messages each including a destination 
address and a source addresses, comprising: 

memory means for storing a selected portion of the 
source address of messages received from the first 
network, wherein the stored portion is linked in the 
30 memory to an index value corresponding to a further 
portion of the respective source address; and 

means for comparing selected portions of the 
destination addresses of messages received from the first 
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network to those stored source address portions, if any, 
linked to an index value determined by a further portion 
of the respective destination address. 

5 17. The device of claim 16, further comprising 

means for forwarding only those messages whose 
destination address portion does not match a stored 
source address portion. 

10 18. The device of claim 17, further comprising 

means for encapsulating each message to be forwarded into 
an ATM cell format. 

19. The device of claim 16, further comprising: 
15 means for monitoring the time period each source 

address portion is stored in the memory means; 

means for deleting a stored source address portion 
from the respective memory means if an allotted time 
period has elapsed and no subsequent destination address 
20 portion match has occurred; and 

means for renewing the allotted time period that a 
source address portion is stored in the respective list 
each time a destination address portion match occurs. 

25 20. A method for selectively forwarding messages 

from a local area ethernet to an ATM-based wide area 
network, each message containing respective six byte 
destination and source MAC addresses, comprising the 
steps of: 

30 selecting a first value in a table of values based 

on the last byte the destination address, each table 
value having an associated linked list of an integer 
number of stored entries, each stored entry representing 



WO 98/47310 



PCT/US98/07540 



20 

the first five bytes of a MAC address of a device located 
on the local area ethernet; 

comparing the first five bytes of the destination 
address to the stored entries, if any, in the linked list 
5 associated with the selected first value; and 

forwarding only those messages in which the first 
five bytes of the destination address does not match a 
stored entry in a respective linked list. 

10 21. The method of claim 20, comprising the further 

steps of: 

selecting a second value in the table based on the 
last byte of the source address; 

comparing the first five bytes of the respective 
15 source address to the stored entries, if any, in the 
linked list associated with the selected second value; 
and 

storing the first five bytes of the respective 
source address in the linked list if there is no matching 
20 entry. 
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AMENDED CLAIMS 

[received by the International Bureau on 14 September 1998 (14.09.98); 
original claims 1-21 replaced by amended claims 1-13 (4 pages)] 

1 . In a bridge device used for forwarding messages from a first network to a 
second network, each message including a destination address, an improved method for 
selectively forwarding only messages whose destination address is not for a device located on 
the first network, the method comprising the steps of: 

selecting a first value in a table of stored values based on a first portion of the 
destination address, the first table value having an associated linked list containing an integer 
number of stored entries; 

comparing the remaining portion of the destination address to the stored entries, if 
any, in the linked list; and 

forwarding only those messages whose remaining destination address portion does not 
match a stored entry in the linked list. 

2. The method of claim 1, wherein the destination address is a six byte MAC 
address and the first portion used for selecting the first table value is the last byte of the 
destination address. 

3. The method of claims 1 or 2, comprising the further step of: 
encapsulating each message to be forwarded into an ATM cell transmission format 

4. The method of any of the above claims 1 -3, each message further including a 
source address , comprising the further steps of: 

selecting a second value in the table based on a first portion of the source address; 
comparing the remaining portion of the source address to the stored entries, if any, in 
the linked list associated with the selected second value; and 
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storing the remaining portion of the source address in the respective linked list if there 
is no matching entry. 

5. The method of claim 4, comprising the further steps of: 

monitoring the time period each source address portion is stored in a respective linked 
list; and 

deleting a source address portion from the respective list if an allotted time period has 
elapsed and no subsequent destination address portion match has occurred. 

6. The method of claim 5, comprising the further step of: 

renewing the allotted time period that a source address portion is stored in the 
respective list each time a destination address portion match occurs. 

7. The method of claim 1 , wherein the first network is an ethernet and the second 
network is an ATM-based wide area network. 

8. In a bridge device used for forwarding messages from a first network to a 
second network, each message including a destination address and a source address, an 
improved method for selectively forwarding only messages, comprising the steps of: 

selecting a first value in a table of values based on a first portion of the destination 
address, each table value having an associated linked list of an integer number of stored 
entries; 

comparing the remaining portion of the destination address to the stored entries, if 
any, in the linked list associated with the selected first value; 
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forwarding only those messages whose remaining destination address portion does not 
match a stored entry in the respective linked list; 

selecting a second value in the table based on a first portion of the source address; 

comparing the remaining portion of the source address to the stored entries, if any, in 
the linked list associated with the selected second value; and 

storing the remaining portion of the source address in the respective linked list if there 
is no matching entry. 

9. The method of claim 8, comprising the further steps of: 

monitoring the time period each source address portion is stored in a respective linked 
list; and 

deleting a source address portion from the respective list if an allotted time period has 
elapsed and no subsequent destination address portion match has occurred. 

1 0. The method of claim 9, comprising the further step of: 

renewing the allotted time period that a source address portion is stored in the 
respective list each time a destination address portion match occurs. 

11. An improved bridge device for controlling the transmission of messages from 
a first network to a second network, the messages each including a destination address and a 
source addresses, the improvement comprising: 

memory means for storing a selected portion of the source address of messages 
received from the first network, wherein the stored portion is linked in the memory to an 
index value corresponding to a further portion of the respective source address; and 



AMENDED SHEET (ARTICLE 19) 



WO 98/47310 PCI7US98/07540 

24 

means for comparing selected portions of the destination addresses of messages 
received from the first network to those stored source address portions, if any, linked to an 
index value determined by a further portion of the respective destination address, and then 
forwarding only those messages whose destination address portion does not match a stored 
source address portion. 

12. The device of claim 1 1, further comprising means for encapsulating each 
message to be forwarded into an ATM cell format. 

13. The device of claims 1 1 or 12, further comprising: 

means for monitoring the time period each source address portion is stored in the 
memory means; 

means for deleting a stored source address portion from the respective memory means 
if an allotted time period has elapsed and no subsequent destination address portion match 
has occurred; and 

means for renewing the allotted time period that a source address portion is stored in 
the respective list each time a destination address portion match occurs. 
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